Hi, This is the fix PR [1] for the public JIRA [2].
Consumer-key:authz_user combination is used to validate the subscription throttling tier instead of using access token. Through that the ability of the user to send more than permitted number of requests per minute by regenerating the access token is avoided. Please review and merge. [1] *https://github.com/wso2/carbon-apimgt/pull/208 <https://github.com/wso2/carbon-apimgt/pull/208>* [2] https://wso2.org/jira/browse/APIMANAGER-3406 Thanks and Regards, -- Chamalee De Silva Software Engineer | WSO2 E:chama...@wso2.com <nirosh...@wso2.com> M :0711540738| http://wso2.com <http://wso2.com/>
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
